A vulnerability classified as problematic was found in pretix up to 2026.3.3/2026.4.3/2026.5.1 . Affected by this vulnerability is an unknown functionality. Executing a manipulation can lead to basic cross site scripting. This vulnerability is tracked as CVE-2026-13225 . The attack can be launched remotely. No exploit exists. Upgrading the affected component is advised.